bec84d2b4a67d48a32af02ddad667de9

General

Target

bec84d2b4a67d48a32af02ddad667de9
Size

476KB
MD5

bec84d2b4a67d48a32af02ddad667de9
SHA1

4bba71c1b648401ed9e2b5c36358e800582c2e76
SHA256

e5c51adeac86a1be1656c0589b272bfce698146045a5cbb8f16e1bc47f802ff4
SHA512

57920702e7db16de916372ad96dce97dd99b15430cce62b9a379564383776d24f4f710303c47cbbc002e0a10fe6d7698740fd1d1bff32e799591c0e50932a0ed
SSDEEP

12288:yTb318LcinhSjjN7TrCNGAEm3a7gAEXQ:yTWyZC79Ax

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bec84d2b4a67d48a32af02ddad667de9

Files

bec84d2b4a67d48a32af02ddad667de9
.exe windows:4 windows x86 arch:x86

45e6f6403039ed830a2213cf9ee6db02

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LeaveCriticalSection
WriteConsoleW
GetCurrentThreadId
HeapAlloc
CreateFileA
Sleep
InterlockedDecrement
VirtualFree
WriteFile
TlsFree
CreateThread
RaiseException
GetProcAddress
MultiByteToWideChar
GetCurrentDirectoryA
LockResource
GetEnvironmentStrings
GetStartupInfoA
LoadLibraryA
GlobalUnlock
GetEnvironmentStringsW
GetTickCount
HeapDestroy
GetFileAttributesA
EnterCriticalSection
GetStdHandle
GetLastError
VirtualAlloc
GetModuleHandleA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
SetHandleCount
GetFileType
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
GetEnvironmentVariableA
GetVersionExA
HeapCreate
HeapFree
RtlUnwind
InterlockedIncrement
InitializeCriticalSection
GetCPInfo
GetACP
GetOEMCP
HeapReAlloc
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW

Sections

.text
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 416KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

45e6f6403039ed830a2213cf9ee6db02

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 32KB - Virtual size: 28KB

.rdata Size: 20KB - Virtual size: 18KB

.data Size: 416KB - Virtual size: 416KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 32KB - Virtual size: 28KB

.rdata
Size: 20KB - Virtual size: 18KB

.data
Size: 416KB - Virtual size: 416KB

.rsrc
Size: 4KB - Virtual size: 3KB